[mod-security-users] 2 problems with modsecurity rpm from jackal-net.at
Brought to you by:
victorhora,
zimmerletw
From: Jan-Frode M. <my...@no...> - 2007-03-06 20:20:14
|
I just rebuild the src.rpm from http://rpms.jackal-net.at/yum/repodata/repoview/modsecurity-apache2-0-2.1.0-1.html on an RHEL4 ES x86-64, and got two minor issues: - The generated httpd.conf tried to load /usr/lib/libxml2.so, while on x86-64 this library is located in /usr/lib64/libxml2.so - I was having some problems getting the mod_security2.so loading during apache startup. It seems the mod_security2.so didn't have the right security labels to run on a SElinux system: # ls -lZ /etc/httpd/modules/mod_security2.so -rwxr-xr-x root root system_u:object_r:etc_t mod_security2.so # /etc/init.d/httpd start Starting httpd: Syntax error on line 156 of /etc/httpd/conf/httpd.conf: Cannot load /etc/httpd/modules/mod_security2.so into server: /etc/httpd/modules/mod_security2.so: failed to map segment from shared object: Permission denied [FAILED] # dmesg audit(1173210856.577:5): avc: denied { execute } for pid=19541 comm="httpd" name="mod_security2.so" dev=dm-0 ino=367334 scontext=root:system_r:httpd_t tcontext=system_u:object_r:etc_t tclass=file # restorecon /etc/httpd/modules/mod_security2.so # ls -lZ /etc/httpd/modules/mod_security2.so -rwxr-xr-x root root system_u:object_r:httpd_modules_t /etc/httpd/modules/mod_security2.so # /etc/init.d/httpd start Starting httpd: [ OK ] I don't have time to try to fix this in the spec-file right now, so I thought I should just report it for now... -jf |